$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft File: PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft (raw, json) Hash identifier: oyoe56TMLHTMy8fy45XbaCRC8JD1yiqdVuzHFRzM7do= Subject key identifier: EA:72:11:A6:70:6C:1F:B9:6B:09:4B:7A:61:98:70:5C:47:91:91:16 Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Certificate serial: 0844 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft Manifest number: 07A9 Signing time: Thu 12 Jun 2025 21:32:28 +0000 Manifest this update: Thu 12 Jun 2025 21:32:27 +0000 Manifest next update: Thu 19 Jun 2025 21:32:27 +0000 Files and hashes: 1: PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl (hash: x61uVZxagMy1wl4aIZoTGRo2xYXLzXveBsa9aK2Z5uI=) 2: 5CDB2402FD6D11EE951DE436C4F9AE02.roa (hash: JCIJiRdjoJPwGnugBIK3v/SX30S5Hj97puNSPDnZHa0=) 3: 0112375EA05411EDB043385AC4F9AE02.roa (hash: aBs0HSQclxaDqKZvgHQYQl981j8saXju4dpMEUuQAU4=) 4: E2FEA6DA3E5411EF9B398D2DC4F9AE02.roa (hash: Rtf4SCa2SLq1aWm8pt96fKW5kPl75H0zBH9P2CmsGlU=) 5: 5B2236E6FD6D11EE951DE436C4F9AE02.roa (hash: xyRyhhQBvFg1P0171dGNRFnwuXqCBoYXwtzjvJ6IHcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2116 (0x844) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB7AB, serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC Validity Not Before: Jun 12 21:32:27 2025 GMT Not After : Jun 19 21:32:27 2025 GMT Subject: CN=684b476b-291b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:42:42:5d:fd:fe:7a:8e:4b:f2:7d:69:c6:d4: 2b:32:8e:5d:60:9f:fd:aa:00:45:b9:2a:0a:66:c9: 59:c4:03:b2:b1:c5:da:44:db:35:37:80:72:0f:9b: df:d4:0d:d5:2f:08:52:05:c6:aa:46:c3:1f:4a:84: 28:a1:41:51:20:8e:ef:8a:8b:dc:c6:4b:7f:60:94: 4e:a1:2c:6f:4f:6e:9e:31:7b:c4:35:a5:d3:36:ad: 34:76:8c:a0:bd:6b:50:4e:b6:10:00:51:db:73:7d: de:70:11:15:a6:ef:12:f2:f9:89:e9:5b:8f:b5:58: 18:9d:02:a4:4d:0d:55:44:1e:ba:fb:f5:8c:cd:3c: 30:39:34:ba:9c:be:4c:cb:78:38:30:f4:bf:e7:e5: 1e:9b:45:bd:8c:8f:18:e0:6e:70:ae:3d:65:80:1e: 96:00:24:75:5b:0c:72:76:a6:9e:e8:b8:7e:ca:2d: 6d:b3:96:a1:a1:c4:f1:c2:7b:cd:56:81:61:b2:9d: 12:4a:2f:e7:1e:50:7f:4d:22:a6:ba:5a:90:1f:47: 2b:5a:aa:aa:a4:2a:f3:34:a6:52:24:f2:df:26:7d: 89:37:de:28:a0:db:0f:6f:4f:8f:c2:70:6e:c0:a0: 34:bf:a8:96:6f:84:96:72:2e:aa:a4:b0:e5:12:5f: 82:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:72:11:A6:70:6C:1F:B9:6B:09:4B:7A:61:98:70:5C:47:91:91:16 X509v3 Authority Key Identifier: keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:17:0f:87:99:d2:d7:4e:39:2d:72:f3:3b:fc:cf:dc:cd:e3: e8:a4:a1:15:23:f9:46:bc:bd:9b:fa:0f:82:e8:ab:66:4a:ec: ff:98:27:69:a5:98:45:f2:6a:52:54:fc:e9:56:75:cb:e6:f6: 86:65:e9:b4:40:ff:be:40:d8:2f:6d:a6:5e:37:f7:4f:dd:47: fb:80:04:eb:b3:72:6a:6c:30:f9:d1:18:fa:70:1e:54:31:06: c3:5a:a9:a8:7d:8d:7b:eb:47:ee:e7:ca:29:4d:4a:07:30:1f: 97:cc:cc:5b:94:a5:5c:76:90:37:d6:63:dc:6e:e1:bf:7a:01: 96:a2:4a:83:77:cf:84:bb:8c:bb:31:8b:df:b2:5a:f9:f9:97: c3:09:a8:40:03:29:c2:49:f9:74:d2:bb:64:53:86:64:09:8b: 8b:59:76:c9:22:f3:20:42:57:38:8d:47:a8:38:f1:fe:91:ec: d2:fb:4c:af:28:9b:49:41:f2:39:67:ab:1e:db:08:fb:08:17: 2f:07:39:c1:77:e7:d2:47:f1:49:ca:c0:7f:e1:c4:cc:02:c5: 6e:29:d6:22:b3:a3:3b:0d:81:14:1d:eb:79:74:99:7a:b4:11: 4a:ef:66:44:6a:a9:5a:8a:48:c0:20:f4:ce:2d:96:ca:b3:ab: 33:ab:0a:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0 NTZGM0Q5QkMwHhcNMjUwNjEyMjEzMjI3WhcNMjUwNjE5MjEzMjI3WjAYMRYwFAYD VQQDEw02ODRiNDc2Yi0yOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUJCXf3+eo5L8n1pxtQrMo5dYJ/9qgBFuSoKZslZxAOyscXaRNs1N4ByD5vf 1A3VLwhSBcaqRsMfSoQooUFRII7viovcxkt/YJROoSxvT26eMXvENaXTNq00doyg vWtQTrYQAFHbc33ecBEVpu8S8vmJ6VuPtVgYnQKkTQ1VRB66+/WMzTwwOTS6nL5M y3g4MPS/5+Uem0W9jI8Y4G5wrj1lgB6WACR1Wwxydqae6Lh+yi1ts5ahocTxwnvN VoFhsp0SSi/nHlB/TSKmulqQH0crWqqqpCrzNKZSJPLfJn2JN94ooNsPb0+PwnBu wKA0v6iWb4SWci6qpLDlEl+CoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpyEaZw bB+5awlLemGYcFxHkZEWMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjdBQi81Njc4NjU2ODQwMDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQ MlFnVVpRTGs4STVGYnoyYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/Fw+HmdLXTjktcvM7/M/czePopKEVI/lGvL2b+g+C6KtmSuz/mCdp pZhF8mpSVPzpVnXL5vaGZem0QP++QNgvbaZeN/dP3Uf7gATrs3JqbDD50Rj6cB5U MQbDWqmofY1760fu58opTUoHMB+XzMxblKVcdpA31mPcbuG/egGWokqDd8+Eu4y7 MYvfslr5+ZfDCahAAynCSfl00rtkU4ZkCYuLWXbJIvMgQlc4jUeoOPH+kezS+0yv KJtJQfI5Z6se2wj7CBcvBznBd+fSR/FJysB/4cTMAsVuKdYis6M7DYEUHet5dJl6 tBFK72ZEaqlaikjAIPTOLZbKs6szqwrb -----END CERTIFICATE-----Generated at Sat Jun 14 20:47:14 2025 by rpki-client